Unrated severityNVD Advisory· Published Oct 30, 2007· Updated Apr 23, 2026
CVE-2007-1321
CVE-2007-1321
Description
Integer signedness error in the NE2000 emulator in QEMU 0.8.2, as used in Xen and possibly other products, allows local users to trigger a heap-based buffer overflow via certain register values that bypass sanity checks, aka QEMU NE2000 "receive" integer signedness error. NOTE: this identifier was inadvertently used by some sources to cover multiple issues that were labeled "NE2000 network driver and the socket code," but separate identifiers have been created for the individual vulnerabilities since there are sometimes different fixes; see CVE-2007-5729 and CVE-2007-5730.
Affected products
5cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:7:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora_core:6:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
21- secunia.com/advisories/25073nvdThird Party Advisory
- secunia.com/advisories/25095nvdThird Party Advisory
- secunia.com/advisories/27047nvdThird Party Advisory
- secunia.com/advisories/27072nvdThird Party Advisory
- secunia.com/advisories/27103nvdThird Party Advisory
- secunia.com/advisories/27486nvdThird Party Advisory
- secunia.com/advisories/29129nvdThird Party Advisory
- securitytracker.com/idnvdThird Party AdvisoryVDB Entry
- taviso.decsystem.org/virtsec.pdfnvdTechnical DescriptionThird Party Advisory
- www.attrition.org/pipermail/vim/2007-October/001842.htmlnvdThird Party Advisory
- www.debian.org/security/2007/dsa-1284nvdThird Party Advisory
- www.mandriva.com/security/advisoriesnvdThird Party Advisory
- www.mandriva.com/security/advisoriesnvdThird Party Advisory
- www.redhat.com/support/errata/RHSA-2007-0323.htmlnvdThird Party Advisory
- www.securityfocus.com/bid/23731nvdThird Party AdvisoryVDB Entry
- www.vupen.com/english/advisories/2007/1597nvdThird Party Advisory
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9302nvdThird Party Advisory
- www.redhat.com/archives/fedora-package-announce/2007-November/msg00004.htmlnvdThird Party Advisory
- www.redhat.com/archives/fedora-package-announce/2007-October/msg00030.htmlnvdThird Party Advisory
- www.redhat.com/archives/fedora-package-announce/2007-October/msg00082.htmlnvdThird Party Advisory
- osvdb.org/35495nvdBroken Link
News mentions
0No linked articles in our index yet.